Behavioral task
behavioral1
Sample
17d27faa729557b0f42af0b4a15d8d09_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
17d27faa729557b0f42af0b4a15d8d09_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
17d27faa729557b0f42af0b4a15d8d09_JaffaCakes118
-
Size
27KB
-
MD5
17d27faa729557b0f42af0b4a15d8d09
-
SHA1
ba095536a3ddd6fb9fd157c5f86cae909fafe628
-
SHA256
7d6b77c877bb5e5fc5e1a09c0fc3f0107cd2156571b59e62844f36f3cf90e4b1
-
SHA512
2e11ad6a054a11c0a7607a8b190a17a542a32fe4fe83baf36d44841a885440f44d26da1250f8e94afa8dd92b30cfbe14c4fc8128337e13db6ade1562f73d7479
-
SSDEEP
768:29dyxIRRij6ECVNsSflCI4wYc9opskW1H9:29dJXkdYNbfQI4/Kopw1H9
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 17d27faa729557b0f42af0b4a15d8d09_JaffaCakes118
Files
-
17d27faa729557b0f42af0b4a15d8d09_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 6.8MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 554KB - Virtual size: 556KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 17KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE